← CVECheck
HomeVulnerabilities

CVE-2000-0977 — MEDIUM severity vulnerability (mailfile.cgi CGI program in MailFile 1.10 allows remote atta)

mailfile.cgi CGI program in MailFile 1.10 allows remote attackers to read arbitrary files by specifying the target file name in the "filename" parameter in a POST request, which is then sent by email to the address specified in the "email" parameter.

CVE IDCVE-2000-0977
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2000-12-19
Last modified2026-04-16
Descriptionmailfile.cgi CGI program in MailFile 1.10 allows remote attackers to read arbitrary files by specifying the target file name in the "filename" parameter in a POST request, which is then sent by email to the address specified in the "email" parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →